Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/ihGP24K2rF-vnQDvMoRPCBtE660.roa
File: ihGP24K2rF-vnQDvMoRPCBtE660.roa (raw, json)
Hash identifier: zV8V6nRdAItJxNhxG3gSpk2jGyQoCq8ouB8rrppb1h8=
Subject key identifier: 8A:11:8F:DB:82:B6:AC:5F:AF:9D:00:EF:32:84:4F:08:1B:44:EB:AD
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 018572FA708314DAE68DF60A159D193243C8
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/ihGP24K2rF-vnQDvMoRPCBtE660.roa
Signing time: Mon 02 Jan 2023 14:54:53 +0000
ROA not before: Mon 02 Jan 2023 14:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3262
IP address blocks: 185.219.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Jan 2023 10:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:70:83:14:da:e6:8d:f6:0a:15:9d:19:32:43:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 2 14:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a118fdb82b6ac5faf9d00ef32844f081b44ebad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:4a:f2:43:3f:9f:44:ae:d6:0d:00:29:b0:
68:b0:24:29:aa:c4:28:e4:9d:b8:4e:a4:89:d8:ca:
44:6b:99:3e:25:1f:71:08:96:31:ce:05:dd:8e:cd:
5d:eb:29:8d:b0:ae:5c:18:27:3d:e3:82:91:1f:90:
b6:43:d3:83:32:f6:ad:9e:1b:b7:aa:34:7c:16:d0:
20:c2:8b:35:d3:0a:e7:94:3a:08:da:86:78:72:9c:
19:49:30:97:86:61:10:51:89:c7:67:ee:79:fb:93:
1f:9b:93:ca:c6:8d:db:44:62:3c:bc:8f:6f:fc:49:
1a:2f:52:01:57:c2:8a:c6:3d:fe:03:a0:0c:27:58:
f2:06:d3:e3:dc:73:72:8e:f6:0a:cb:18:c8:c8:c4:
54:51:c1:a5:cd:69:95:e7:ad:fb:51:6f:8e:fe:64:
93:10:9d:8f:93:e7:d0:e3:5e:69:db:73:e7:55:51:
61:04:fd:c1:c2:23:86:a8:10:32:b9:00:ac:ae:88:
af:a0:1a:f8:ba:33:9d:1a:56:37:23:e1:b2:50:6b:
bd:71:a9:43:c9:e2:9d:24:97:21:93:0c:ab:76:1e:
f4:90:40:47:5a:dc:29:6f:c2:9d:c8:37:94:a9:46:
81:4c:bd:0b:b3:43:f1:5b:ec:20:93:48:6c:42:93:
82:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:11:8F:DB:82:B6:AC:5F:AF:9D:00:EF:32:84:4F:08:1B:44:EB:AD
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/ihGP24K2rF-vnQDvMoRPCBtE660.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.217.0/24
Signature Algorithm: sha256WithRSAEncryption
41:48:f2:40:9f:ed:4b:45:05:0c:e3:49:ea:3c:76:ee:58:a1:
b1:1d:5b:10:40:6d:06:42:8f:a8:6a:5b:da:d7:45:5f:8b:1b:
25:18:a4:fb:9a:8d:09:6f:8b:59:d0:7d:a1:f9:e6:55:53:57:
9d:bc:d0:99:74:2b:5d:39:73:0b:56:6f:73:c1:e6:dc:62:8f:
c8:4c:0e:00:c1:2d:75:bd:17:79:a0:d5:a6:fc:ee:20:32:d7:
b9:ef:18:93:ba:bb:6f:dd:85:c0:62:75:4b:89:25:2a:88:b2:
06:aa:0d:fe:0e:99:f4:ec:c6:2e:1b:fc:a7:43:cb:11:29:73:
d0:1c:55:ae:30:1c:c7:81:34:4c:64:c8:dc:e4:c7:38:3a:ab:
b5:71:8a:ce:66:52:6f:ab:45:f3:5c:40:43:4a:0b:90:7e:12:
de:cb:f1:f6:5d:55:e9:8a:8f:c8:40:7b:46:05:66:10:53:fa:
a2:30:97:7f:2e:31:16:bb:c3:6e:1c:45:e6:1a:3e:51:0a:e3:
2b:a6:99:ab:de:0b:fa:a1:3f:b9:fa:cc:e0:60:61:61:37:76:
10:77:17:c7:4a:22:c1:fd:13:b3:a1:01:19:ff:61:6a:17:01:
7d:42:d3:b1:53:9f:0e:cf:83:71:cd:cc:0e:52:6c:27:68:33:
af:e2:6f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:50 2024 by rpki-client on console-ams.rpki-client.org